Week 8 (extra i guess)

Question 1

CPS Vulnerabilities

Answer 1

Causes of vulnerabilities include isolation assumption, increased connectivity, heterogeneity, USB usage, bad practices, spying, homogeneity, and suspicious employees.

Question 2

Cyber Vulnerabilities

Answer 2

Examples Include:

Inter-control Center Communications Protocol (ICCP),

TCP/IP,

Communication protocols like Modbus.

Question 3

Physical Vulnerabilities

Answer 3

Involves insufficient security for components, susceptibility to tampering, and risks to medical devices.

Question 4

Technical Vulnerabilities

Answer 4

Arise from human awareness and skill deficiencies.

Question 5

Platform Vulnerabilities

Answer 5

Related to configuration, hardware, software, and lack of protection.

Question 6

Management Vulnerabilities

Answer 6

Due to the absence of security policies and standards.

Question 7

False Data Injection (FDI) Attacks

Answer 7

FDI attacks target actuators or sensors in control systems, causing physical impact.

These attacks can lead to significant physical damage, and security mechanisms need to complement traditional technologies like encryption and authentication.

Question 8

Covert/Stealthy Attacks

Answer 8

Challenges in detecting adaptive adversaries aiming to raise pressure without being noticed.

Different types of stealthy FDI attacks, including surge attacks, bias attacks, and geometric attacks, each with varying levels of perturbation and damage.

Question 9

Fuzzing in CPS Security

Answer 9

Fuzz testing as an automated method to reveal software defects and vulnerabilities in CPS.

Various fuzzing tools, such as beSTORM, Sulley, SMOD, and modbus-cli, used for testing ICS components.